Skip to content

[FLINK-37609][format] Bump parquet from 1.14.4 to 1.15.1 #26398

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
snuyanzin merged 1 commit into from
Apr 4, 2025
Merged

[FLINK-37609][format] Bump parquet from 1.14.4 to 1.15.1 #26398

snuyanzin merged 1 commit into from
Apr 4, 2025

Conversation

@snuyanzin
Copy link
Contributor

@snuyanzin snuyanzin commented Apr 4, 2025
edited
Loading

What is the purpose of the change

The PR bumps dependency from 1.14.4 to 1.15.1
to mitigate https://nvd.nist.gov/vuln/detail/CVE-2025-30065

Brief change log

pom and NOTICE files

Verifying this change

This change is a trivial rework / code cleanup without any test coverage.

Does this pull request potentially affect one of the following parts:

  • Dependencies (does it add or upgrade a dependency): ( yes)
  • The public API, i.e., is any changed class annotated with @Public(Evolving): ( no)
  • The serializers: ( no)
  • The runtime per-record code paths (performance sensitive): ( no)
  • Anything that affects deployment or recovery: JobManager (and its components), Checkpointing, Kubernetes/Yarn, ZooKeeper: (no)
  • The S3 file system connector: ( no)

Documentation

  • Does this pull request introduce a new feature? ( no)
  • If yes, how is the feature documented? (not applicable)

@flinkbot
Copy link
Collaborator

flinkbot commented Apr 4, 2025
edited
Loading

CI report:

Bot commands The @flinkbot bot supports the following commands:
  • @flinkbot run azure re-run the last Azure build

AHeise
AHeise approved these changes Apr 4, 2025
View reviewed changes
Copy link
Contributor

@AHeise AHeise left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM, thanks for bumping.

@snuyanzin
Copy link
Contributor Author

snuyanzin commented Apr 4, 2025

@flinkbot run azure

1 similar comment
@snuyanzin
Copy link
Contributor Author

snuyanzin commented Apr 4, 2025

@flinkbot run azure

@snuyanzin
Copy link
Contributor Author

snuyanzin commented Apr 4, 2025

the failure is not related. to changes and was present in 2.0 https://dev.azure.com/apache-flink/apache-flink/_build/results?buildId=66981&view=logs&j=2e8cb2f7-b2d3-5c62-9c05-cd756d33a819&t=2dd510a3-5041-5201-6dc3-54d310f68906&l=10312
and master https://dev.azure.com/apache-flink/apache-flink/_build/results?buildId=66979&view=logs&j=93ebd72a-004d-5a68-6295-7ace4ad889cd&t=35e92294-2840-51f1-1753-ae015c24c41f&l=10584

@snuyanzin snuyanzin merged commit 5aaff07 into apache:master Apr 4, 2025
@ferenc-csaky ferenc-csaky mentioned this pull request Apr 6, 2025
Merged
@mbalassi mbalassi mentioned this pull request May 7, 2025
Merged
@snuyanzin snuyanzin deleted the 115 branch July 29, 2025 07:56
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@AHeise AHeise AHeise approved these changes

@twalthr twalthr twalthr approved these changes

Assignees

No one assigned

Labels

component=Formats

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@snuyanzin @flinkbot @AHeise @twalthr